CVE-2023-24829
published 2023-01-31CVE-2023-24829: Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component from 0.13.0 before 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database.
This problem is fixed from version 0.13.3 of iotdb-web-workbench onwards.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | iotdb | >= 0.13.0 < 0.13.3 | 0.13.3 |
| apache_software_foundation | apache_iotdb_workbench | >= 0.13.0 < 0.13.3 | 0.13.3 |